Vulnerability Description
ACE Security WiP-90113 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration files. Attackers can access the camera's configuration backup by sending a GET request to the /config_backup.bin endpoint, exposing credentials and system settings.
CVSS Score
HIGH
Related Weaknesses (CWE)
References
- https://acesecurity.jp
- https://acesecurity.jp/support/top/wip_series/wip-90113
- https://www.exploit-db.com/exploits/48127
- https://www.vulncheck.com/advisories/aptina-ar-p-mp-camera-remote-configuration-
FAQ
What is CVE-2020-37146?
CVE-2020-37146 is a vulnerability with a CVSS score of 7.5 (HIGH). ACE Security WiP-90113 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrieve sensitive configuration files. Attackers can access the camera's co...
How severe is CVE-2020-37146?
CVE-2020-37146 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-37146?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.